Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
File: OGKIZa_YpN-v3e-BHvz8ecA4czI.mft (raw, json)
Hash identifier: EFlBowapmyL/jKTjZhwBYTsKzaWdBF2aqw8tuwaiFS8=
Subject key identifier: E4:91:31:B5:15:46:B9:74:62:DB:BD:81:FA:6C:5B:AA:F7:FB:0E:98
Authority key identifier: 38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
Certificate issuer: /CN=38628865afd8a4dfafddef811efcfc79c0387332
Certificate serial: 018F874B125FEF343D62A173A28C911CDD1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
Manifest number: 066F
Signing time: Fri 17 May 2024 16:03:15 +0000
Manifest this update: Fri 17 May 2024 16:03:15 +0000
Manifest next update: Sat 18 May 2024 16:03:15 +0000
Files and hashes: 1: OGKIZa_YpN-v3e-BHvz8ecA4czI.crl (hash: 1U7MxT+P38iSlGGUFw8dhpice/z4aK5MJg4wfeWXFaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4b:12:5f:ef:34:3d:62:a1:73:a2:8c:91:1c:dd:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38628865afd8a4dfafddef811efcfc79c0387332
Validity
Not Before: May 17 16:03:15 2024 GMT
Not After : May 18 16:03:15 2024 GMT
Subject: CN=e49131b51546b97462dbbd81fa6c5baaf7fb0e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a5:49:71:2a:55:25:17:b7:65:8b:2e:a9:ed:
7c:4e:a8:57:04:f4:51:d6:65:16:c7:29:69:ae:9e:
7e:ae:02:0f:ba:b3:ee:0d:f5:bd:ce:4d:10:cb:31:
f8:9c:4e:c5:4a:c3:c7:c8:96:f6:9e:cd:f3:1e:db:
52:0e:5a:ae:c9:77:25:56:4f:2a:16:7b:0e:ad:40:
d3:a5:55:4c:8d:42:66:6a:25:60:5c:72:7c:59:c8:
4a:68:89:3d:d1:fa:fb:89:5f:34:0c:68:8b:74:8d:
9e:95:cd:01:08:a5:02:5c:ad:4f:5d:4c:dd:6e:98:
ba:c6:66:9d:5b:39:77:c9:53:cc:ed:07:b0:9e:1f:
c2:ac:1a:a1:2a:5c:00:f6:1c:a5:f1:30:db:b5:be:
1a:46:10:87:b3:1d:e3:30:5e:75:e7:a1:ce:e6:52:
f4:c2:68:ca:a9:96:d7:f5:62:5d:85:f4:7a:44:59:
b9:76:37:f8:f7:91:27:27:29:74:2f:64:12:82:ce:
a2:66:b0:d9:28:dd:01:4a:66:8a:8e:22:ba:3d:67:
1d:8b:f1:e9:15:87:a8:e3:68:58:e1:7f:f2:36:89:
27:09:72:ea:77:69:04:c7:fa:3e:fb:e0:96:04:8c:
10:b8:7f:9d:50:c9:84:27:d0:68:8a:0d:ab:b6:aa:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:91:31:B5:15:46:B9:74:62:DB:BD:81:FA:6C:5B:AA:F7:FB:0E:98
X509v3 Authority Key Identifier:
keyid:38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c4:f3:45:97:54:d0:74:39:a7:45:7f:07:5b:10:89:9b:14:
63:fc:37:c4:53:61:35:0a:88:32:70:b7:1a:2d:cb:ac:cd:37:
37:23:f8:68:e8:e1:99:92:fc:74:c2:ad:73:6b:3a:a4:d6:d1:
cc:d2:af:53:98:1a:18:86:c9:38:1e:53:90:87:77:54:85:fb:
5b:cd:82:c2:d1:c3:2a:25:01:c5:ff:37:cb:d5:12:ae:ef:31:
7d:a1:d0:3a:49:dd:42:d2:af:80:3f:4c:18:16:77:2b:95:21:
26:2b:11:7e:0d:50:8b:6c:6f:81:81:a3:a6:bf:cb:e9:71:60:
d0:b5:19:a0:a9:86:67:39:9a:a4:39:11:56:a8:e8:a6:dd:35:
78:67:9a:6e:9e:86:b0:c2:68:cd:e3:5c:ac:a1:d3:82:92:38:
04:ff:03:3d:98:45:de:7c:5b:19:81:32:6a:db:07:a6:2f:32:
f6:78:2e:53:26:80:ba:f3:3e:3e:6c:85:27:61:b7:64:13:ec:
dc:65:70:44:fa:68:f2:6a:34:12:2d:9b:22:37:2b:40:3a:54:
9a:a2:0a:12:57:6e:8a:9d:6c:e0:4a:66:73:ea:e4:13:cf:5e:
b6:36:76:e2:2f:4d:46:8c:58:5c:94:3c:d7:7a:63:a4:f9:46:
8d:67:b8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:05:28 2024 by rpki-client on console-ams.rpki-client.org